gpgsign

GitHub Action to sign artifacts or any file with GnuPG.

Usage

name: Example

on:
  - push
  - pull_request

jobs:
  test:
    runs-on: ubuntu-latest

    steps:
      - uses: actions/checkout@v2

      - uses: actionhippie/gpgsign@v1
        with:
          private_key: ${{ secrets.GNUPG_KEY }}
          passphrase: ${{ secrets.GNUPG_PASSPHRASE }}
          detach_sign: true
          files: |
            dist/*
          excludes: |
            dist/*.sha256

Inputs

`private_key`

Private GPG key used for signing

`passphrase`

Passphrase for the GPG key

`armor`

Create ASCII armored output, defaults to true

`detach_sign`

Make a detached signature

`clear_sign`

Make a clear text signature

`files`

List of files to create a signature

`excludes`

List of files to exclude from signing

Outputs

None

Security

If you find a security issue please contact thomas@webhippie.de first.

Contributing

Fork -> Patch -> Push -> Pull Request

Authors

Thomas Boerger

License

Apache-2.0

Copyright

Copyright (c) 2022 Thomas Boerger <thomas@webhippie.de>

Name		Name	Last commit message	Last commit date
Latest commit History 98 Commits
.github		.github
hack		hack
overlay/usr/local/bin		overlay/usr/local/bin
.releaserc		.releaserc
CHANGELOG.md		CHANGELOG.md
Dockerfile		Dockerfile
LICENSE		LICENSE
README.md		README.md
action.yml		action.yml

License

actionhippie/gpgsign

Folders and files

Latest commit

History

Repository files navigation

gpgsign

Usage

Inputs

private_key

passphrase

armor

detach_sign

clear_sign

files

excludes

Outputs

Security

Contributing

Authors

License

Copyright

About

Topics

Resources

License

Stars

Watchers

Forks

Languages

`private_key`

`passphrase`

`armor`

`detach_sign`

`clear_sign`

`files`

`excludes`